[TLS] [Fwd: {Virus?} I-D Action:draft-latze-tls-tpm-extns-00.txt]
Carolin Latze <carolin.latze@unifr.ch> Wed, 07 October 2009 15:16 UTC
Return-Path: <carolin.latze@unifr.ch>
X-Original-To: tls@core3.amsl.com
Delivered-To: tls@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix)
with ESMTP id 3BDB128C0E6 for <tls@core3.amsl.com>;
Wed, 7 Oct 2009 08:16:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.323
X-Spam-Level:
X-Spam-Status: No, score=-6.323 tagged_above=-999 required=5 tests=[AWL=0.276,
BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com
[127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BRmf7Uumx4WN for
<tls@core3.amsl.com>; Wed, 7 Oct 2009 08:16:06 -0700 (PDT)
Received: from siufsrv104.unifr.ch (siufsrv104.unifr.ch [134.21.214.74]) by
core3.amsl.com (Postfix) with ESMTP id E48E73A657C for <tls@ietf.org>;
Wed, 7 Oct 2009 08:16:05 -0700 (PDT)
Received: from diufpc272.unifr.ch ([134.21.72.156]) by siufsrv104.unifr.ch
stage1 with esmtp with id 1MvYGu-0005fm-C1 for <tls@ietf.org> from
<carolin.latze@unifr.ch>; Wed, 07 Oct 2009 17:17:44 +0200
Message-ID: <4ACCB0E4.4000801@unifr.ch>
Date: Wed, 07 Oct 2009 17:16:52 +0200
From: Carolin Latze <carolin.latze@unifr.ch>
User-Agent: Thunderbird 2.0.0.23 (X11/20090916)
MIME-Version: 1.0
To: tls@ietf.org
Content-Type: multipart/mixed; boundary="------------080303030202010204080100"
Subject: [TLS] [Fwd: {Virus?} I-D Action:draft-latze-tls-tpm-extns-00.txt]
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working
group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>,
<mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>,
<mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Oct 2009 15:16:07 -0000
Hi all,
after several experiments with TPMs as authentication devices in
EAP-TLS, we figured out, that the specific modifications in order to use
TPMs might be rather an extension to TLS than an EAP extension.
Therefore, we gave it a try and defined a new TLS extension in order to
use TPM certified keys directly with TLS. We are aware of the fact, that
there is a possibility to request new valid X.509 certificates for those
keys which allows to use them with standard TLS (and do not require a
new extension), but since we want to avoid that request (and we think
that this does not introduce any security issues), we propose this
extension.
We are always open for discussions, (critical) feedback, suggestions, ...
Regards
Carolin Latze
-------- Original Message --------
Subject: {Virus?} I-D Action:draft-latze-tls-tpm-extns-00.txt
Date: Wed, 7 Oct 2009 16:45:01 +0200
From: Internet-Drafts@ietf.org <Internet-Drafts@ietf.org>
Reply-To: internet-drafts@ietf.org <internet-drafts@ietf.org>
To: i-d-announce@ietf.org <i-d-announce@ietf.org>
A New Internet-Draft is available from the on-line Internet-Drafts directories.
Title : Transport Layer Security (TLS) Extensions for the Trusted Platform Module (TPM)
Author(s) : C. Latze, et al.
Filename : draft-latze-tls-tpm-extns-00.txt
Pages : 10
Date : 2009-10-07
Trusted Platform Modules (TPMs) become more and more widespread in
modern desktop and laptop computers and provide secure storage and
cryptographic functions. As one nice feature of TPMs is that they
can be identified uniquely, they provide a good base for device
authentication in protocols like TLS.This document specifies a TLS
extension that allows to use TPM certified keys with TLS in order to
allow for a secure and comfortable device authentication in TLS.
A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-latze-tls-tpm-extns-00.txt
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
Below is the data which will enable a MIME compliant mail reader
implementation to automatically retrieve the ASCII version of the
Internet-Draft.
--
Carolin Latze
PhD Student ICT Engineer
Department of Computer Science Swisscom Strategy and Innovation
Boulevard de Pérolles 90 Ostermundigenstrasse 93
CH-1700 Fribourg CH-3006 Bern
phone: +41 26 300 83 30 +41 79 72 965 27
homepage: http://diuf.unifr.ch/people/latzec
- [TLS] [Fwd: {Virus?} I-D Action:draft-latze-tls-t… Carolin Latze
- Re: [TLS] [Fwd: {Virus?} I-D Action:draft-latze-t… Blumenthal, Uri
- Re: [TLS] [Fwd: {Virus?} I-D Action:draft-latze-t… Eric Rescorla
- [TLS] [Fwd: Re: [Fwd: {Virus?} I-D Action:draft-l… Carolin Latze
- Re: [TLS] [Fwd: {Virus?} I-D Action:draft-latze-t… Blumenthal, Uri
- Re: [TLS] [Fwd: {Virus?} I-D Action:draft-latze-t… Carolin Latze
- Re: [TLS] [Fwd: {Virus?} I-D Action:draft-latze-t… Pasi.Eronen
- Re: [TLS] [Fwd: {Virus?} I-D Action:draft-latze-t… Carolin Latze